Agenteach Talk to us

Public / customer-facing · June 2026

Security & data privacy architecture.

How Agenteach protects student data, district systems, and teacher workflows — with plain-English commitments for educators and implementation detail for technology, privacy, and procurement teams.

Privacy control panel

What schools can expect

DPA-ready

Minimum necessary data

We collect only what the district-approved workflow needs, and teachers choose what context to use.

US-only storage and processing

Student-bearing content is school-controlled by default; district-authorized records use encrypted US-hosted systems.

AI data is not used for model training

AI may draft or extract, but it does not train on student data or make final decisions.

Residency

US-only

School-controlled content by default; US-hosted approved records.

Access

MFA + SSO

Admin MFA and district identity.

AI

Zero training

Teacher review, no model training.

Commercialization

Never sold

No sale, ads, or commercial profiles.

About Agenteach

Technology that works quietly in the background.

Agenteach is an educational technology platform dedicated to empowering teachers with intelligent, AI-driven tools that streamline lesson planning, enhance student feedback, and reduce administrative overhead. Built by educators for educators, Agenteach is designed as a school-controlled, teacher-reviewed documentation and workflow assistant: it prepares drafts and records for authorized users, while educators and districts remain in control.

Trust posture

DPA-ready first; certifications are a roadmap.

Agenteach's near-term trust posture is to be designed for FERPA/COPPA-aligned, DPA-ready K-12 workflows. We do not claim SOC 2, ISO 27001, 1EdTech, SDPC registry, or iKeepSafe badge completion unless and until the relevant third-party process is complete. For pilots, the priority is a signed district data/privacy agreement, a field-level data map, a subprocessor list, no-training AI commitments, MFA and least privilege, deletion/export support, incident response, and external security-review evidence.

Before pilots

Signed DPA/DSA, data dictionary, subprocessor list, no-sale/no-ads/no-training commitments, MFA, token encryption, no raw student-content logs, deletion/export process, and incident-response plan.

District readiness

SDPC/NDPA-style packet, vendor-risk packet, AI-use statement, Google OAuth least-privilege posture, US residency commitment, admin-visible data inventory, and audit export.

Trust roadmap

SOC 2 readiness then Type I/II, external penetration testing cadence, 1EdTech TrustEd Apps preparation, and iKeepSafe-style FERPA/COPPA review if the product scope requires it.

Part 1

Teacher summary, in plain English

Agenteach is a helper. It can organize notes, draft messages, and prepare work for you to review. You stay in charge.

01 · You approve

Agenteach does not act on its own.

It does not automatically send messages, submit records, grade students, discipline students, diagnose students, or confirm IEP/504 service delivery. It prepares drafts. A teacher or authorized staff member reviews and decides what happens next.

02 · Less data

We only use what the workflow needs.

For roster-light workflows, that may mean a student name, class/course, and guardian contact only when a parent draft is enabled. We do not need student web-browsing history, precise location, social media profiles, or extra demographic data.

03 · School control

The district sets the rules.

Districts approve the service, integrations, retention settings, exports, deletion, and subprocessors through a DPA/NDPA or similar agreement. Access is scoped by district, school, class, role, and student relationship.

04 · Safe AI use

AI helps draft; it does not decide.

AI can help summarize, extract, classify, rewrite, or draft from teacher-selected context. It must not invent facts, make final decisions, or train on student data. Teachers review outputs before anything is sent, exported, routed, or saved as an official-looking record.

Simple promise

Agenteach is for school work only. We do not sell student data, rent it, target ads, build commercial profiles, or use student data to train AI models. The MVP is teacher-only; if student-facing features are added later, they will require additional COPPA and district consent controls.

Part 2

Technical overview & compliance architecture

Agenteach uses a district-authorized, teacher-reviewed architecture: React/Next.js for the interface, a policy-enforcing backend for authorization and audit, school-controlled Google Workspace storage by default for student-bearing content, and encrypted US-hosted infrastructure for district-approved application records.

Drive-first, district-authorized storage

Student-bearing artifacts are kept in the school or teacher's approved Google Workspace by default, with Agenteach storing references and workflow metadata where possible. When a district authorizes Agenteach-hosted records under a DPA/NDPA or similar agreement, they are processed in encrypted US-hosted systems with private networking and no public database access.

RBAC + ABAC tenant isolation

Every sensitive request is checked server-side by role, district, school, class/course membership, student relationship, data category, and record state. Role alone is not enough.

Secure transit and browser controls

Traffic uses HTTPS/TLS, security headers, CDN/WAF controls, rate limits, upload size/type limits, and backend-issued short-lived upload URLs. Sensitive student data is not stored in browser localStorage, sessionStorage, or IndexedDB.

Encrypted files, records, and backups

Databases, object storage, backups, OAuth tokens, transcripts, exports, and temporary processing artifacts use encryption, scoped access, lifecycle deletion, and district-tagged metadata where applicable.

Internal IAM

Least privilege + Zero Trust

MFA is enforced for internal users and district admins. Staff access follows district policy and supported SSO requirements.

Production PII

Temporary, logged access

No standing internal access to district data. Support access is ticketed, approved, time-limited, read-only by default, and fully logged.

District identity

SAML 2.0 + OAuth 2.0

Google and Microsoft OAuth are first; Clever, ClassLink, OneRoster, SAML/OIDC, LMS, SIS, and IEP integrations are added only through district-approved, least-privilege scopes.

Privacy governance

Clear rules for data, AI, audit, retention, and subprocessors.

Federal and state alignment

Student-linked behavior notes, attendance nuance, grades, observations, parent communication drafts, and IEP/504 or accommodation logs are treated as education records when tied to identifiable students. Governance is designed to align with FERPA school-official workflows, COPPA school-consent structures where under-13 data is in scope, SDPC/NDPA expectations, and comparable state student privacy obligations.

Retention and right to deletion

Retention policies are configurable by district, record type, data class, and contract/state requirement. On contract termination or authorized LEA request, data is returned/exported and then deleted or de-identified where legally allowed; some compliance records may require correction entries or legal hold instead of silent deletion.

Enterprise AI processing

AI calls go through a backend safety layer, not directly from the browser. The system minimizes prompts, detects sensitive content before AI/export, records provider/model/redaction metadata in audit logs, and uses DPA/subprocessor terms with no-training and no-retention commitments where available.

Subprocessor flow-down obligations

Subprocessors needed to deliver Agenteach, such as hosting, email, AI, transcription, monitoring, and file-processing vendors, are bound by DPAs or equivalent terms. We maintain a minimized subprocessor list, review vendor controls before use, and flow down privacy, security, deletion, confidentiality, and breach-response obligations.

District-ready MVP guardrails

Low automation, high control.

For early district use, Agenteach focuses on evidence capture, observation notes, draft communications, grade-to-review-grid workflows, teacher tasks, field-level data transparency, and admin-visible privacy controls — while deferring autonomous actions and direct official-system writeback.

Implement now

  • • Teacher identity, tenant model, secure access, and admin-managed domains.
  • • Roster-light student picker with minimal fields.
  • • Evidence inbox with extraction, warnings, and teacher confirmation.
  • • Parent communication drafts that teachers edit and explicitly send.
  • • District-visible dashboard for field-level data maps, OAuth scopes, retention, subprocessors, audits, integrations, deletion/export status, and AI provider settings.

Defer or restrict

  • • Direct attendance, SIS, LMS, gradebook, or IEP writeback until contracts, rollback/correction, and audit are mature.
  • • Student accounts or student chatbot features in the MVP.
  • • Auto-send parent/admin messages or automated escalation.
  • • AI discipline, mental health, special education, or service-delivery conclusions.
  • • Background Gmail scanning, full-drive scanning, broad mailbox access, session replay, ad trackers, unnecessary telemetry on student-data pages, or raw student content in application logs.

Continuous compliance

Security is an operating rhythm, not a checklist.

Vulnerability management

SAST, dependency scanning, secret scanning, infrastructure-as-code scanning, DAST for staging, runtime monitoring, and a pre-pilot or annual penetration-testing roadmap help detect and patch risks.

Incident response plan

In the event of a suspected breach, the response plan calls for immediate isolation of affected systems, investigation and forensic support, preservation of audit evidence, and notice to impacted LEAs within contractually and legally required timelines.

Need district review materials?

We’ll walk your team through the architecture.

For security questionnaires, DPA/NDPA or DSA review, data-dictionary review, HECVAT/CAIQ-style diligence, subprocessor review, AI policy review, or pilot planning, contact Agenteach and we’ll share the appropriate supporting materials.